Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add an allowlist of which clients can use the LSP server #3489

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Add an allowlist of which clients can use the LSP server #3489

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
48 changes: 46 additions & 2 deletions private/buf/buflsp/buflsp.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,7 @@ import (
"context"
"fmt"
"log/slog"
"slices"
"sync"
"sync/atomic"

Expand All @@ -40,6 +41,7 @@ import (
// Returns a context for managing the server.
func Serve(
ctx context.Context,
hasWarranty bool,
wktBucket storage.ReadBucket,
container appext.Container,
controller bufctl.Controller,
Expand All @@ -65,6 +67,7 @@ func Serve(
&connWrapper{Conn: conn, logger: container.Logger()},
zap.NewNop(), // The logging from protocol itself isn't very good, we've replaced it with connAdapter here.
),
hasWarranty: hasWarranty,
logger: container.Logger(),
controller: controller,
checkClient: checkClient,
Expand All @@ -81,6 +84,27 @@ func Serve(

// *** PRIVATE ***

// Clients that we are willing to serve without the override flag.
var knownClients = []string{
// VSCode and derivatives use env.appName as the LSP client name. This in
// turn is set from nameLong in product.json. See e.g.
// https://github.com/microsoft/vscode/blob/e1de2a458dfb770545489daf499131fd328924e7/src/vs/workbench/services/extensions/common/remoteExtensionHost.ts#L216

// Names from the official VSCode product.
"Visual Studio Code",
"Visual Studio Code - Insiders",

// https://github.com/microsoft/vscode/blob/e1de2a458dfb770545489daf499131fd328924e7/product.json#L3
"Code - OSS",

// https://github.com/VSCodium/vscodium/blob/8bcb412ec53f0232e373d9d04b50f804f090ea67/prepare_vscode.sh#L138
"VSCodium",
"VSCodium - Insiders",

// https://github.com/neovim/neovim/blob/9a681ad09e2add96d47bf3f39cca8029f3bf09df/runtime/lua/vim/lsp/client.lua#L539
"Neovim",
}
nicksnyder marked this conversation as resolved.
Show resolved Hide resolved

// lsp contains all of the LSP server's state. (I.e., it is the "god class" the protocol requires
// that we implement).
//
Expand All @@ -89,8 +113,9 @@ func Serve(
// Its handler methods are not defined in buflsp.go; they are defined in other files, grouped
// according to the groupings in
type lsp struct {
conn jsonrpc2.Conn
client protocol.Client
conn jsonrpc2.Conn
client protocol.Client
hasWarranty bool

logger *slog.Logger
controller bufctl.Controller
Expand All @@ -117,6 +142,25 @@ func (l *lsp) init(_ context.Context, params *protocol.InitializeParams) error {
if l.initParams.Load() != nil {
return fmt.Errorf("called the %q method more than once", protocol.MethodInitialize)
}

if !slices.Contains(knownClients, params.ClientInfo.Name) {
if l.hasWarranty {
return fmt.Errorf(
"the Buf language server does not currently support %s %s; "+
"to override this (at risk of misbehavior), pass --break-warranty-seal",
params.ClientInfo.Name,
params.ClientInfo.Version,
)
}

l.logger.Warn(fmt.Sprintf(
"the Buf language server does not currently support %s %s; "+
"the warranty seal has been broken: misbehavior may not be considered a bug",
params.ClientInfo.Name,
params.ClientInfo.Version,
))
}

l.initParams.Store(params)

// TODO: set up logging. We need to forward everything from server.logger through to
Expand Down
14 changes: 12 additions & 2 deletions private/buf/cmd/buf/command/beta/lsp/lsp.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,8 @@ import (

const (
// pipe is chosen because that's what the vscode LSP client expects.
pipeFlagName = "pipe"
pipeFlagName = "pipe"
breakWarrantySealFlagName = "break-warranty-seal"
)

// NewCommand constructs the CLI command for executing the LSP.
Expand All @@ -59,6 +60,9 @@ func NewCommand(name string, builder appext.Builder) *appcmd.Command {
type flags struct {
// A file path to a UNIX socket to use for IPC. If empty, stdio is used instead.
PipePath string

// Whether unknown clients are permitted to communicate with the LSP.
BreakWarrantySeal bool
}

// Bind sets up the CLI flags that the LSP needs.
Expand All @@ -69,6 +73,12 @@ func (f *flags) Bind(flagSet *pflag.FlagSet) {
"",
"path to a UNIX socket to listen on; uses stdio if not specified",
)
flagSet.BoolVar(
&f.BreakWarrantySeal,
breakWarrantySealFlagName,
false,
"override in-warranty checks; any misbehavior is working-as-intended",
)
}

func newFlags() *flags {
Expand Down Expand Up @@ -122,7 +132,7 @@ func run(
return err
}

conn, err := buflsp.Serve(ctx, wktBucket, container, controller, checkClient, jsonrpc2.NewStream(transport))
conn, err := buflsp.Serve(ctx, !flags.BreakWarrantySeal, wktBucket, container, controller, checkClient, jsonrpc2.NewStream(transport))
if err != nil {
return err
}
Expand Down